Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/Zjb3r1Bw0lI8fUiIM9JxiCJWwHI.roa
File: Zjb3r1Bw0lI8fUiIM9JxiCJWwHI.roa (raw, json)
Hash identifier: A4eWO681e1wpoSRlYkPEPltWUnUrC16bg+n2M27tj0s=
Subject key identifier: 66:36:F7:AF:50:70:D2:52:3C:7D:48:88:33:D2:71:88:22:56:C0:72
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 09E24960
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/Zjb3r1Bw0lI8fUiIM9JxiCJWwHI.roa
Signing time: Sat 01 Jan 2022 09:01:19 +0000
ROA not before: Sat 01 Jan 2022 09:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197216
IP address blocks: 89.187.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165824864 (0x9e24960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Jan 1 09:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6636f7af5070d2523c7d488833d271882256c072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:60:2a:71:95:4f:29:17:62:f7:6a:2a:75:
64:a3:28:47:4f:ad:6f:0b:ac:49:fa:65:61:b0:0a:
77:05:c1:98:b8:a2:76:13:1e:af:5f:38:f7:c3:e9:
4c:72:54:9d:9c:a3:96:a0:b6:b8:bb:70:0a:9d:17:
32:4f:f5:55:3e:d3:1c:6c:e6:74:c4:63:d6:f3:26:
6e:90:8f:6b:f9:eb:5c:7b:05:9e:3a:2d:ae:c3:ce:
24:ef:f5:0c:bf:32:58:4f:50:03:2c:3e:ea:7b:35:
39:25:d3:8c:af:78:cf:bf:f3:75:44:35:bd:61:24:
a8:bc:82:bd:6e:87:f0:e8:4c:ee:a4:25:b8:9a:70:
d6:a6:50:2a:a9:79:5a:c0:a3:fd:2b:86:c8:ec:a0:
20:75:09:83:6f:95:a5:4e:d4:9e:c4:90:18:ac:61:
0e:3c:ff:15:df:10:19:8a:16:84:dc:33:24:a2:0a:
99:4a:5c:a8:e1:df:e3:ef:eb:18:2d:df:1e:5f:97:
2b:4c:3a:5a:87:2b:d4:2f:2e:6d:12:3b:c7:ed:66:
86:3d:71:bc:a4:f3:00:87:bd:54:5e:ed:16:57:49:
a7:4d:9a:c2:cf:79:f5:94:58:83:4e:a3:60:60:a4:
c6:1e:7a:21:17:9d:29:4b:e4:b4:2b:9a:85:0d:d0:
e6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:36:F7:AF:50:70:D2:52:3C:7D:48:88:33:D2:71:88:22:56:C0:72
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/Zjb3r1Bw0lI8fUiIM9JxiCJWwHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.83.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:8f:88:7d:bf:56:a6:23:f4:64:56:71:e6:60:98:05:3e:6d:
92:8a:6e:d9:fa:52:e1:ec:4f:f6:98:b0:95:35:cc:d9:f8:b0:
3a:65:2c:37:84:f0:fc:f4:d7:85:8f:7a:d0:b3:40:29:2e:ce:
fb:7d:ed:bb:2f:63:b8:8f:1e:37:06:02:8e:09:77:64:e4:35:
91:02:f0:05:63:42:d3:f0:5f:cd:02:1b:72:43:5c:90:6e:c7:
bb:b3:a4:28:b2:d7:25:64:95:77:d8:3b:79:97:48:90:42:a4:
40:75:ac:85:28:3e:5d:a3:92:d5:57:1a:d5:51:21:55:c3:95:
88:a1:ab:9c:dc:72:4d:6c:24:28:29:49:92:eb:54:2a:39:07:
e7:45:a5:cd:a2:c0:9d:5d:1b:3a:6e:39:fe:d8:ba:7a:0d:8f:
02:f4:7a:f7:04:f6:a3:3f:42:65:dc:71:fa:91:ae:c0:68:e0:
9e:44:38:46:85:15:34:58:5d:61:3f:ef:03:9b:71:96:8b:8a:
aa:73:6a:59:7f:08:47:06:f2:44:28:13:bb:35:ac:f4:0d:7d:
60:f1:31:a2:20:d9:57:89:2d:da:ac:13:ad:48:30:71:74:a5:
90:58:e8:50:65:35:3d:4a:d4:a2:dd:bf:87:d0:ee:06:91:d9:
0a:d0:b0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:23 2025 by rpki-client